Generate
CA Signed Certificates
IMPORTANT:
Installation of FTASecurity is supported
on three Linux Operating System (CentOS, RHEL, and SUSE). Follow
the colored boxes for the commands to be executed on specific Linux
Operating System as shown below:
|
IMPORTANT:
|
IMPORTANT:
Rest
all commands and steps are common for the three Operating Systems.
FTASecurity provides a simple user managed
certificate authority (CA) to create certificates that are suitable
for test environments or for servers running in private networks
where there is no existing public key management (PKI) system for
creating certificates.
NOTE:
For servers on the public
Internet, use the certificates from one of the commercial CAs. These certificate
authorities are both more secure and generally trusted. Most web
browsers come with the root keys for all the major commercial CAs,
so browsers will automatically trust sites that use certificates signed
by one of these CAs. Additionally, many organizations will have
a CA for issuing certificates for servers on the corporate network.
User should check with the IT department to see if they can provide certificates.
This CA created by the Security Provider scripts
can be used to create signed X.509 certificates that can be used
to enable HTTPS for the FactoryTalk Analytics products and for Security
Provider.
Provide Feedback